Discoveries
1. 💥Dependency Confusion: How I Hacked Into Apple, Microsoft and Dozens of Other Companies
Alex Brisan found severe security issues in multiple package managers and coined the term "dependency confusion" for them. This is truly a bomb.
2. Should you use CDN for libraries?
As browsers have modified behavior and partitioning cache, shared cache is no longer a strength when weighing CDN vs. package installation.
3. Integrating Serverless Functions with Redis
This is useful if you are using serverless functions.
This site also provides some other guides on cloud functions.
4. Using emoji as Git commit type, yay or nay?
I stumbled upon some Github repos that use emoji as the git commit type. It's clearer than just using fix, refactor etc. when skimming a list of commits, as long as the convention is made clear across the team. Just as I was about to applaud👏🏼👏🏼👏🏼, I 👀 this author uses commit messages as tips to remind him/her what the icon represents. Well, what do you think?
Generally, I follow the commit guidelines proposed by Angularjs in my personal projects.
Tools
1. Flexbox cheatsheet
Flexbox's learning curve is steep and many rookies have been struggling with it. Personally when I started learning it, CSS tricks's cheatsheet helped a lot in clarifying the concepts. It's been non-stoppingly updating ever since, now it also includes some useful information like polyfills and bug trackings. It also has a similar guide for CSS grid.
2. Compare NPM packages
When you can't decide on which package to use among serveral similar ones, this site may be helpful.
